Spyware scumbags make $2bn a year

Cash from chaos

By John Leyden, 4th May 2005

Regcast training : Hyper-V 3.0, VM high availability and disaster recovery

Spyware invasive programs that generate pop-ups, hijack home pages, redirect searches and poison DNS files generates an estimated $2bn in revenue a year¹, according to a study by anti-spyware firm Webroot. It estimates the surreptitious spyware and adware market "may be approaching 25 per cent" of the already-established market of online advertising.

As we've noted before, it's hard to square Webroot's $2n estimate with the observable size of adware market. Webroot's This calculation assumes a uniform distribution of spyware, among other statistical sins. Estimates on the damage caused by computer viruses are a notoriously inexact science. The same seems to apply to looking at the adware market.

SpyAudit

In the first quarter of 2005, 88 per cent of scans using Webroot's SpyAudit software found some form of unwanted program (Trojan, system monitor, cookie or adware) on consumer computers. The vast majority of corporate PCs (87 per cent) also harboured undesirable programs or cookies. Excluding cookies, more than 55 per cent of corporate PCs contained unwanted programs. Infested consumer PCs contained an average of 7.2 non-cookie infections.

Cookies annoy some people but they are nowhere near as serious a problem as key=logging or Trojan horse programs. System monitor (key logger programs) were found in seven per cent of consumer and enterprise PCs scanned using Webroot's software, down from 19 per cent in Q4 2004. Trojan horse programs were found on 19 per cent of consumer PCs and seven per cent of enterprise PCs, unchanged from Q4 2004.

Consumer sites 'riddled' with spyware

Webroot's data comes from analysis of stats from Webroot's consumer and corporate SpyAudit tools and from online research culled by Phileas, Webroot's automated spyware research system. Contrary to the perceived wisdom that spyware comes only from a limited number of dodgy online porn and warez sites, Phileas identified 4,294 sites (with almost 90,000 pages) containing some form of spyware.

Webroot's State of Spyware report names and shames the top ten most significant emerging spyware and adware threats based on detection, as well as potential impact. CoolWebSearch, an infamous piece of adware with over 100 different variants, was dubbed the top threat. GAIN and 180search Assistant were the next two most prevalent nuisances. ®

¹ Webroot's figure for the value of the spyware market comes from multiplying the average number of pieces of adware per machines (4.38 - according to Webroot) times the number of active users on the net (290m - according to Nielsen Netratings) times the value of each adware installation per year ($2.25 - a figure derived Claria's filing that it made $90m a year from 40m "users").